Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
6.3
CVE-2020-36834
- EPSS 0.1%
- Veröffentlicht 16.10.2024 07:15:08
- Zuletzt bearbeitet 16.10.2024 16:38:14
The Discount Rules for WooCommerce plugin for WordPress is vulnerable to missing authorization via several AJAX actions in versions up to, and including, 2.0.2 due to missing capability checks on various functions. This makes it possible for subscrib...
6.1
CVE-2024-8541
- EPSS 1.25%
- Veröffentlicht 16.10.2024 02:15:06
- Zuletzt bearbeitet 08.11.2024 15:07:08
The Discount Rules for WooCommerce – Create Smart WooCommerce Coupons & Discounts, Bulk Discount, BOGO Coupons plugin for WordPress is vulnerable to Reflected Cross-Site Scripting due to the use of add_query_arg without appropriate escaping on the UR...
6.1
CVE-2022-2090
- EPSS 0.21%
- Veröffentlicht 17.07.2022 11:15:08
- Zuletzt bearbeitet 21.11.2024 07:00:18
The Discount Rules for WooCommerce WordPress plugin before 2.4.2 does not escape a parameter before outputting it back in an attribute of the plugin's discount rule page, leading to Reflected Cross-Site Scripting
1